最新ニュース一覧

The transition to remote and hybrid working has led enterprises to radically revise the way they operate. This has thrown up a variety of new challenges in ensuring systems remain secure.

CTO and Co-Founder of Contrast Security — helping companies become truly great at securing their apps and APIs.

Application security matters because the entire role of virtual machines and containers is to run their application workload. 

The code security specialists at Contrast deliver an update on the most severe software vulnerability in history.

SafeLog4j is an open-source tool that can detect and verify vulnerable Log4j applications and protect them.

Steve Wilson is an Application Security expert development manager and currently and currently the head of product at Contrast.

Researchers are warning that attackers are actively exploiting the newly publicized unauthenticated remote code execution vulnerability in Log4j, the Java-based logging tool from Apache. 

IT departments and developers around the world are furiously scanning applications for evidence of the critical zero-day vulnerability in the Apache log4j2 Java-based logging library in open source code on their systems. 

As we close out 2021, a gargantuan open-source vulnerability has reared its ugly head.

The Log4j cyber threat is being compared to the notorious Equifax hack of 2017, which affected 147 million Americans. However, the Log4j exploit has far greater reach due to the software component’s widespread adoption.

A major vulnerability was discovered Thursday in the technology Log4j, which is a popular logging package in Java. 

The early lessons from Log4j indicate that key security principles can help better handle these high-risk software supply chain security incidents if teams have proper support.